All data transmitted between your browser and our Website is encrypted using Transport Layer Security (TLS 1.2 or higher). This is indicated by the padlock icon and "https://" prefix in your browser's address bar. We enforce HTTPS across all pages of the Website.

We do not store, process, or transmit cardholder data on our own servers. All payment transactions are handled by PCI-DSS Level 1 compliant payment gateway providers. Your card number, CVV, and banking credentials are never accessible to our staff or systems.

Personal data is stored on secured cloud infrastructure with access restricted to authorised personnel only. We implement role-based access controls (RBAC) to ensure that employees can only access data necessary for their job functions. All administrative access is protected by strong passwords and, where applicable, multi-factor authentication (MFA).

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant authorities and affected individuals in accordance with the Personal Data Protection Act 2010 (PDPA) of Malaysia. We maintain an incident response plan and conduct regular security reviews.

We use reputable third-party services for hosting, analytics, and payment processing. All third-party providers are evaluated for their security practices and are contractually bound to protect your data. We do not share your personal data with third parties for their own marketing purposes.

We use cookies strictly for session management, analytics, and improving user experience. We do not use cookies to collect sensitive personal information. You may disable cookies in your browser settings, though this may affect Website functionality.

You are responsible for maintaining the confidentiality of any account credentials you create on our Website. You should use a strong, unique password and not share your login details with others. If you suspect unauthorised access to your account, please contact us immediately at [email protected].

If you discover a security vulnerability on our Website, we encourage responsible disclosure. Please report it to [email protected] with a description of the issue. We will acknowledge receipt within 2 business days and work to address confirmed vulnerabilities promptly.

We regularly update our Website software, dependencies, and security configurations to address known vulnerabilities. Our hosting infrastructure is monitored 24/7 for unusual activity and potential threats.

Martoda Biotech Sdn Bhd (Registration No. 201801043037 / 1405069-M)
No. 51-2, Jalan SR 1/9, Taman Serdang Raya, 43300 Seri Kembangan, Selangor, Malaysia
Email: [email protected]
Phone: +60 17-762 4721